← Back to search Server uses network capabilities via: fetch() Server uses filesystem capabilities via: fs sync ops Server uses shell capabilities via: child_process, execSync(), spawn() Server uses env_vars capabilities via: process.env
modelcontextprotocol/inspector
MCP Registry ↗ npm
B
78.4 / 100
Versions
1.0.0 latest May 20, 2026
Tools 0
No tools indexed yet.
Permissions 4
network medium filesystem low shell high env_vars low Scan Findings 23
info
package.json metadata
info
Transport: streamable-http
info
Required env vars (11)
medium
Permission: network access detected
low
Permission: filesystem access detected
high
Permission: shell access detected
low
Permission: env_vars access detected
medium
Excessive dependency count: 51 direct dependencies
medium
Suspicious package name: react-dom
medium
Vulnerable dependency: @modelcontextprotocol/sdk@1.25.2 (GHSA-345p-7cg4-v4c7)
medium
Vulnerable dependency: ws@8.18.0 (GHSA-58qx-3vcg-4xpx)
medium
Vulnerable dependency: express-rate-limit@8.2.1 (GHSA-46wh-pxpv-q5gq)
medium
Vulnerable dependency: ajv@6.12.6 (GHSA-2g4f-4pwh-qvx6)
medium
Vulnerable dependency: postcss@8.5.6 (GHSA-qx2v-qp2m-jg93)
medium
Vulnerable dependency: vite@7.1.11 (GHSA-4w7w-66w2-5vf9)
medium
Vulnerable dependency: vite@7.1.11 (GHSA-p9ff-h696-f583)
medium
Vulnerable dependency: vite@7.1.11 (GHSA-v2wj-q39q-566r)
info
SLSA Build Level 3 detected
info
Scanner output_poisoning failed
info
Scanner behavioral_verifier failed
info
SBOM generated: 938 components
info
MITRE ATLAS technique coverage summary
info
ATLAS: Adversarial ML Supply Chain (AML.T0043)